Lucene search
K

73 matches found

Cvelist
Cvelist
added 5 days ago31 views

CVE-2026-54784 CoreWCF: SPNEGO SecurityContextToken proof key wrapped without confidentiality

CoreWCF is a port of the service side of Windows Communication Foundation WCF to .NET Core. In version 1.9.0, CoreWCF SPNEGO SecurityContextToken negotiation can expose the proof key recovered from the RSTR when TransportWithMessageCredential with Windows client credentials and session...

7.4CVSS0.00175EPSS
Exploits0References4
CVE
CVE
added 5 days ago24 views

CVE-2026-54784

CoreWCF CVE-2026-54784 affects CoreWCF 1.9.0 where SPNEGO SecurityContextToken proof key recovered from the RSTR can be observed when using TransportWithMessageCredential with Windows client credentials, enabling impersonation of the Windows principal and decryption/forgery of WS‑SecureConversati...

7.4CVSS6AI score0.00175EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.15 views

PT-2026-49238

Name of the Vulnerable Software and Affected Versions Mattermost Desktop App versions prior to 6.1 Mattermost Desktop App version 5.5.13.0 Description The application fails to restrict the allow list of domains for NTLM credential forwarding. This allows a user on a server where the image proxy i...

7.7CVSS5.9AI score0.00187EPSS
Exploits0References6
Microsoft KB
Microsoft KB
added 2026/05/12 2:0 p.m.11 views

Update 25.18 for Microsoft Dynamics 365 Business Central 2024 Release Wave 2 (Application Build 25.18.48229, Platform Build 25.2.48119)

None None...

7.8CVSS5.8AI score0.00272EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2026/04/10 7:21 p.m.6 views

SiYuan Affected by Zero-Click NTLM Hash Theft and Blind SSRF via Mermaid Diagram Rendering

SiYuan configures Mermaid.js with securityLevel: "loose" and htmlLabels: true. In this mode, tags with src attributes survive Mermaid's internal DOMPurify and land in SVG blocks. The SVG is injected via innerHTML with no secondary sanitization. When a victim opens a note containing a malicious...

8.7CVSS5.9AI score0.00306EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 11:28 a.m.6 views

CVE-2021-27194

Cleartext transmission of sensitive information in Netop Vision Pro up to and including 9.7.1 allows a remote unauthenticated attacker to gather credentials including Windows login usernames and passwords...

8.8CVSS6.7AI score0.00363EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 1:15 p.m.8 views

CVE-2025-9068

A security issue exists within the Rockwell Automation Driver Package x64 Microsoft Installer File MSI repair functionality, installed with FTLinx. Authenticated attackers with valid Windows Users credentials can initiate a repair and hijack the resulting console window for vbpinstall.exe. This...

7.8CVSS5.8AI score0.0017EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 12:24 p.m.19 views

CVE-2025-9067

CVE-2025-9067 describes a privilege-escalation vulnerability in the x86 Microsoft Installer File (MSI) used with Rockwell Automation FactoryTalk Linx/FTLinx. Authenticated Windows users can initiate a repair via the MSI, hijack the repair console (e.g., vbpinstall.exe in the Rockwell MSI path), a...

8.5CVSS6.4AI score0.00176EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/10/14 12:23 p.m.18 views

CVE-2025-9068

CVE-2025-9068 affects Rockwell Automation Driver Package x64 MSI repair functionality (installed with FTLinx). Authenticated Windows users can initiate a repair and hijack the console window for vbpinstall.exe, spawning a SYSTEM-level command prompt with full access to files, processes, and syste...

8.5CVSS6.4AI score0.0017EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.9 views

PT-2025-41916

Name of the Vulnerable Software and Affected Versions FTLinx versions affected versions not specified Description A security issue exists in the x86 Microsoft Installer MSI used with FTLinx. Authenticated attackers with valid Windows user credentials can initiate a repair and hijack the resulting...

8.5CVSS6.2AI score0.00176EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.5 views

Rockwell Automation FactoryTalk Linx 安全漏洞

Rockwell Automation FactoryTalk Linx is a suite of industrial communication solutions from Rockwell Automation USA. The product is primarily used to communicate between small applications and large automation systems, among others. A security vulnerability exists in Rockwell Automation FactoryTal...

8.5CVSS6.6AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-9356

Malware in sbrugna...

7.9CVSS6.3AI score0.00306EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-46284

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.00445EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-18099

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00466EPSS
Exploits0References4
Gitee
Gitee
added 2025/07/27 4:46 a.m.306 views

SharpKatz

This is a port of the mimikatz tool, specifically the sekurlsa::logonpasswords, sekurlsa::ekeys, and lsadump::dcsync commands, to C and .NET. The tool is called SharpKatz. The tool is designed to extract sensitive information from a Windows system, including: Logon passwords Kerberos encryption...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/06/10 12:0 a.m.5 views

Mozilla Thunderbird < 139.0.2

The version of Thunderbird installed on the remote Windows host is prior to 139.0.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-50 advisory. - A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's...

6.5CVSS7.1AI score0.00466EPSS
Exploits0References2
CVE
CVE
added 2025/05/14 4:56 p.m.103 views

CVE-2025-3877

CVE-2025-3877 is rejected/not used; this entry does not represent an active vulnerability.

6.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/13 4:5 p.m.10 views

thunderbird: Leak of hashed Window credentials via crafted attachment URL

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can be hosted externally. When an email is opened, Thunderbird accesses the specified URL to...

6.3CVSS6.6AI score0.0024EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/05/13 2:1 p.m.6 views

thunderbird: Leak of hashed Window credentials via crafted attachment URL

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can be hosted externally. When an email is opened, Thunderbird accesses the specified URL to...

6.3CVSS6.6AI score0.0024EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/05/07 12:59 p.m.6 views

thunderbird: Leak of hashed Window credentials via crafted attachment URL

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Thunderbird processes the X-Mozilla-External-Attachment-URL header to handle attachments which can be hosted externally. When an email is opened, Thunderbird accesses the specified URL to...

6.3CVSS6.6AI score0.0024EPSS
Exploits0References7
Rows per page
Query Builder